Popular JavaScript package UAParser.js infected with malware
Npm package UAParser.js, installed on tens of millions of computers worldwide, has been infected with a password stealer and a miner. Here’s what to do.
1211 articles
Npm package UAParser.js, installed on tens of millions of computers worldwide, has been infected with a password stealer and a miner. Here’s what to do.
If you receive an e-mail of dubious authenticity, analyze it yourself. Here’s how.
Over the past five years, the Trickbot banking Trojan has evolved into a multifunctional tool for cybercriminals.
Kaspersky’s Ask the Analyst service will ease access to our expertise.
On October’s Patch Tuesday, Microsoft patched 71 vulnerabilities, several of which are particularly serious.
Our security technologies detected the exploitation of a previously unknown vulnerability in the Win32k driver.
At DEF CON 29, a researcher explained why agricultural machinery should be considered critical infrastructure and demonstrated vulnerabilities in the main manufacturers’ equipment.
How attackers are most apt to get into target companies’ infrastructure.
IT Security Economics 2021 report: Infosec’s top 5 challenges dealing with complex incidents.
The results of AV-TEST’s thorough research on the ability of cybersecurity products to tackle ransomware are shocking and scary.
Testing 11 advanced security solutions against the latest ransomware threats.
Google released an update that patches three dangerous vulnerabilities in Google Chrome. Update your browser right away!
At the SAS 2021 conference, our experts talked about the Tomiris backdoor, which appears to be linked to the DarkHalo group.
Cyberattacks most commonly rely on just a few common operating system components.
The Open Management Infrastructure agent, with four vulnerabilities, is being automatically installed on virtual Linux machines on Microsoft Azure.
To protect MikroTik routers from the Mēris botnet, or to clean a previously infected router, users should update RouterOS and check settings.
Our first transparency report addresses requests from law enforcement agencies and government organizations worldwide.
An unpatched vulnerability in the MSHTML engine is enabling attacks on Microsoft Office users.
Malefactors are looking for vulnerable Confluence servers and exploiting CVE-2021-26084, an RCE vulnerability.